$ rpki-client -vvf rpki.apnic.net/member_repository/A9124B27/500618DCC6E811EF87AE690DC4F9AE02/UjrFjamEDQscqom9_54NzkZ2fEo.mft File: UjrFjamEDQscqom9_54NzkZ2fEo.mft (raw, json) Hash identifier: RA1t5i2nqnsZNEAQRbac4tS94gagJNhqx3wtqpo4o6I= Subject key identifier: 88:A5:D1:7F:28:CE:82:1B:1C:B1:41:05:26:30:07:EA:6F:91:26:41 Authority key identifier: 52:3A:C5:8D:A9:84:0D:0B:1C:AA:89:BD:FF:9E:0D:CE:46:76:7C:4A Certificate issuer: /CN=A9124B27/serialNumber=523AC58DA9840D0B1CAA89BDFF9E0DCE46767C4A Certificate serial: AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UjrFjamEDQscqom9_54NzkZ2fEo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9124B27/500618DCC6E811EF87AE690DC4F9AE02/UjrFjamEDQscqom9_54NzkZ2fEo.mft Manifest number: A5 Signing time: Wed 05 Nov 2025 06:30:17 +0000 Manifest this update: Wed 05 Nov 2025 06:30:17 +0000 Manifest next update: Wed 12 Nov 2025 06:30:17 +0000 Files and hashes: 1: UjrFjamEDQscqom9_54NzkZ2fEo.crl (hash: /8PX8R+upJAbTkyTwt8qG6ocCFTvXdbNuDbYhbn41Mc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9124B27/500618DCC6E811EF87AE690DC4F9AE02/UjrFjamEDQscqom9_54NzkZ2fEo.crl rsync://rpki.apnic.net/member_repository/A9124B27/500618DCC6E811EF87AE690DC4F9AE02/UjrFjamEDQscqom9_54NzkZ2fEo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UjrFjamEDQscqom9_54NzkZ2fEo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 06:30:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 170 (0xaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9124B27, serialNumber=523AC58DA9840D0B1CAA89BDFF9E0DCE46767C4A Validity Not Before: Nov 5 06:30:17 2025 GMT Not After : Nov 12 06:30:17 2025 GMT Subject: CN=690aeef9-31ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:57:2d:05:b5:1b:bb:cb:df:60:aa:1c:04:7e: 24:d8:9e:6b:fa:ff:0a:a5:9f:f5:29:bb:b5:3f:a1: fb:79:65:58:dc:b8:d2:cb:37:5d:e0:c6:c2:79:52: ce:c3:b0:04:f2:4a:31:15:68:38:a9:28:4d:50:fc: a8:e2:af:35:95:c5:12:d4:cb:8c:92:ae:2d:66:63: 0c:78:de:5e:7d:29:8f:12:01:0b:40:9f:53:ff:90: 46:76:0d:70:6f:f3:fa:f9:3b:ea:8e:50:4a:47:33: 4d:f0:be:e4:e3:c9:1a:67:9d:9f:28:7f:98:c2:1d: 6e:ce:22:08:67:a1:f3:a6:b8:ce:38:c7:f0:ea:31: 8c:24:13:94:b8:5b:7a:fc:be:1f:5f:d7:9e:a3:5f: 29:a2:d6:b1:3e:c6:0b:41:88:bc:8c:67:e7:16:e2: ec:e9:e4:20:dd:2f:5a:0c:79:89:a9:fc:7f:45:ca: 89:e9:4e:16:87:c7:02:00:6f:c5:34:5a:38:e9:81: e9:95:b6:08:dc:d0:2b:14:66:96:81:eb:24:96:0b: d5:63:8e:91:bf:67:81:ab:0e:63:05:ae:4e:b1:8e: fd:80:7a:01:3b:26:4b:d6:52:13:75:e6:6a:1c:0a: 20:6d:0c:92:bd:c6:6f:c3:6b:64:8a:0e:d7:06:83: e2:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:A5:D1:7F:28:CE:82:1B:1C:B1:41:05:26:30:07:EA:6F:91:26:41 X509v3 Authority Key Identifier: keyid:52:3A:C5:8D:A9:84:0D:0B:1C:AA:89:BD:FF:9E:0D:CE:46:76:7C:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9124B27/500618DCC6E811EF87AE690DC4F9AE02/UjrFjamEDQscqom9_54NzkZ2fEo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UjrFjamEDQscqom9_54NzkZ2fEo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9124B27/500618DCC6E811EF87AE690DC4F9AE02/UjrFjamEDQscqom9_54NzkZ2fEo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:b8:c2:8a:9c:93:fd:83:e6:41:20:78:0e:63:3f:12:c9:20: 57:5b:89:21:31:0d:08:ef:e3:66:6e:0e:ed:2e:59:9c:fa:46: e8:d1:36:74:09:22:9d:ed:31:99:67:e1:25:fe:16:a3:34:aa: 86:91:22:fa:bd:ff:eb:af:15:45:de:f6:10:01:6b:5e:81:f5: c7:0d:c6:30:09:76:5a:25:82:0d:bf:73:fc:c8:5e:4b:1a:a1: 84:bd:93:fe:0f:2a:9e:c4:f9:86:a3:af:16:42:b1:df:e3:de: c4:2b:b8:69:70:7a:6a:3a:cb:62:d8:89:41:c7:cd:c8:b9:38: 3d:b5:3f:61:1e:fd:84:d3:ed:bd:fe:f4:b1:a2:94:3e:66:df: b8:de:81:e1:ef:24:30:11:2c:0b:f0:61:bc:1f:16:50:cd:7d: 5d:e9:f9:22:1b:95:f3:07:b1:db:e5:22:46:67:47:ef:91:d7: bf:fd:00:47:f3:72:71:03:b4:43:cb:48:f2:ca:37:72:f3:84: 34:f0:cc:b9:82:f6:e5:e8:9e:7e:ce:c8:67:64:5b:e8:06:cb: cd:36:d5:31:52:64:9e:ea:f4:b8:57:c8:22:af:12:ef:e0:a8: 04:da:c7:3b:49:50:ca:6e:81:84:2b:d0:16:a6:44:76:c9:3c: 8c:ba:87:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjRCMjcxMTAvBgNVBAUTKDUyM0FDNThEQTk4NDBEMEIxQ0FBODlCREZGOUUwRENF NDY3NjdDNEEwHhcNMjUxMTA1MDYzMDE3WhcNMjUxMTEyMDYzMDE3WjAYMRYwFAYD VQQDEw02OTBhZWVmOS0zMWFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAulctBbUbu8vfYKocBH4k2J5r+v8KpZ/1Kbu1P6H7eWVY3LjSyzdd4MbCeVLO w7AE8koxFWg4qShNUPyo4q81lcUS1MuMkq4tZmMMeN5efSmPEgELQJ9T/5BGdg1w b/P6+TvqjlBKRzNN8L7k48kaZ52fKH+Ywh1uziIIZ6HzprjOOMfw6jGMJBOUuFt6 /L4fX9eeo18potaxPsYLQYi8jGfnFuLs6eQg3S9aDHmJqfx/RcqJ6U4Wh8cCAG/F NFo46YHplbYI3NArFGaWgesklgvVY46Rv2eBqw5jBa5OsY79gHoBOyZL1lITdeZq HAogbQySvcZvw2tkig7XBoPiLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIil0X8o zoIbHLFBBSYwB+pvkSZBMB8GA1UdIwQYMBaAFFI6xY2phA0LHKqJvf+eDc5GdnxK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNEIyNy81MDA2MThEQ0M2 RTgxMUVGODdBRTY5MERDNEY5QUUwMi9VanJGamFtRURRc2Nxb205XzU0TnprWjJm RW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VqckZqYW1FRFFzY3FvbTlfNTROemtaMmZFby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NEIyNy81MDA2MThEQ0M2RTgxMUVGODdBRTY5MERDNEY5QUUwMi9VanJGamFtRURR c2Nxb205XzU0TnprWjJmRW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJuMKKnJP9g+ZBIHgOYz8SySBXW4khMQ0I7+Nmbg7tLlmc+kbo0TZ0 CSKd7TGZZ+El/hajNKqGkSL6vf/rrxVF3vYQAWtegfXHDcYwCXZaJYINv3P8yF5L GqGEvZP+DyqexPmGo68WQrHf497EK7hpcHpqOsti2IlBx83IuTg9tT9hHv2E0+29 /vSxopQ+Zt+43oHh7yQwESwL8GG8HxZQzX1d6fkiG5XzB7Hb5SJGZ0fvkde//QBH 83JxA7RDy0jyyjdy84Q08My5gvbl6J5+zshnZFvoBsvNNtUxUmSe6vS4V8girxLv 4KgE2sc7SVDKboGEK9AWpkR2yTyMuocC -----END CERTIFICATE-----Generated at Wed Nov 5 11:55:05 2025 by rpki-client